ce4d35e2e7a3b0509d901d39f341e6e2_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce4d35e2e7a3b0509d901d39f341e6e2_JaffaCakes118
Size

28KB
MD5

ce4d35e2e7a3b0509d901d39f341e6e2
SHA1

bc56f085c06d1d73d6575652be2999b6f03954e5
SHA256

da826fb64c65588df597e4eb55a4318cfbd8ef66c28ad5ce6dc68b07f7223933
SHA512

0cffcf1e9547fec6e7d5181ff5fbb09f55e158cbda5ac5e30ff4050ef793ea0112d5db4683266772ffc945c50f876f190cfee1b2c8755195c85cb08dba052fb2
SSDEEP

384:4/VgFrlD/SE05I5uPySFCDe7KOiAGpICn2/nRV0NFZINj2g1/VY1PUa0fOAE0YfH:4Orl7S7VygPf6Wf0fZcCymjIm6n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce4d35e2e7a3b0509d901d39f341e6e2_JaffaCakes118

Files

ce4d35e2e7a3b0509d901d39f341e6e2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

GetPluginInfo
GetPluginResult
GetPluginRun
PluginFunc
PluginStop

Sections

packerBY
Size: - Virtual size: 63KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

bero^fr
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE